Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/_2bpEOQPcOIDDdK0tOrQmu2kX3s.roa
File: _2bpEOQPcOIDDdK0tOrQmu2kX3s.roa (raw, json)
Hash identifier: /krtSFwTBGAG3JYso6Jwm7fQiOv1swWBxYSxX18KMbI=
Subject key identifier: FF:66:E9:10:E4:0F:70:E2:03:0D:D2:B4:B4:EA:D0:9A:ED:A4:5F:7B
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018224CEB72398053B62C8CBF6A3322DFB84
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/_2bpEOQPcOIDDdK0tOrQmu2kX3s.roa
Signing time: Fri 22 Jul 2022 07:28:23 +0000
ROA not before: Fri 22 Jul 2022 07:28:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 185.206.248.0/24 maxlen: 24
185.255.127.0/24 maxlen: 24
185.225.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:24:ce:b7:23:98:05:3b:62:c8:cb:f6:a3:32:2d:fb:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 22 07:28:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff66e910e40f70e2030dd2b4b4ead09aeda45f7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:0d:73:56:db:72:a5:97:94:95:30:02:5b:47:
d8:09:52:f1:8d:ca:d8:3c:e1:78:25:11:ff:cc:3a:
7f:a6:e4:66:1b:5a:c1:5a:10:00:e7:64:aa:e8:09:
16:98:e8:8a:db:d5:cc:36:db:77:24:09:57:66:50:
90:7b:58:b4:12:3b:ad:5b:05:0c:77:7c:33:d0:36:
28:7f:3b:ec:dc:3e:b8:a2:8b:e9:17:13:a0:0a:bf:
2e:02:eb:19:58:46:4e:0c:5a:a8:cc:d5:b7:f3:f9:
f9:5d:87:98:2f:43:4f:81:74:02:7d:23:9b:3f:cc:
ff:99:85:7f:19:76:8d:68:01:22:56:d0:24:a8:68:
5a:f6:db:f0:ef:18:77:a2:49:7e:09:a7:ea:3e:16:
c2:54:0f:7c:24:8f:5b:46:32:31:b0:1f:52:1b:24:
a6:7b:13:66:bd:07:d3:66:bb:99:b3:2a:ad:14:73:
e4:30:0d:d2:55:c8:ae:d7:7e:67:12:c9:bc:d0:d5:
d7:76:eb:a2:49:f9:c9:dc:99:d1:56:4c:fe:7a:cf:
ab:63:f9:9f:a5:2d:e4:ae:22:8e:46:ea:35:70:65:
f0:87:90:82:8a:5c:e9:57:03:2a:f2:cc:1d:9c:cc:
e8:d5:71:a1:72:08:87:de:09:72:55:e6:60:d4:48:
3e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:66:E9:10:E4:0F:70:E2:03:0D:D2:B4:B4:EA:D0:9A:ED:A4:5F:7B
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/_2bpEOQPcOIDDdK0tOrQmu2kX3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.248.0/24
185.225.2.0/24
185.255.127.0/24
Signature Algorithm: sha256WithRSAEncryption
91:cb:08:09:f9:92:39:31:5a:5e:d8:a9:94:1b:b4:77:d6:dc:
02:58:ed:89:d2:c0:19:35:5e:f2:e2:09:1b:8f:7a:ef:03:2c:
e6:27:db:71:50:e3:4c:af:91:de:de:03:24:b3:fc:90:45:66:
4f:23:6f:73:c3:15:2a:32:02:17:af:09:11:d8:e2:b3:9e:5a:
1d:72:23:dc:a3:8c:16:1c:1a:e4:d3:a4:60:90:9d:b9:1f:f2:
be:22:57:5a:18:ab:6f:7f:b1:9a:7a:5b:aa:0e:cc:c0:a5:be:
e8:b3:cb:d8:d5:44:24:3e:30:1e:97:62:c3:ca:50:03:8d:b8:
78:c7:99:50:f3:43:6a:df:73:76:61:b4:e9:8f:fa:50:2b:25:
7d:06:47:28:d4:44:33:9f:6a:66:a9:df:94:65:7e:fc:df:10:
5f:c2:51:bd:1e:77:9a:a4:6b:c9:e2:67:22:69:f1:74:fb:a3:
54:30:d7:cf:c8:3c:8e:1f:7c:97:4f:47:50:18:b5:64:a4:57:
f9:6f:5f:6f:f5:3f:b6:d6:c7:0b:8c:70:a3:e7:2b:de:6a:43:
e7:20:f7:35:b7:2d:e5:99:77:46:6a:75:ce:e7:03:02:0f:af:
07:92:07:1f:72:47:00:8d:c7:ea:4d:64:5f:e5:3c:77:74:ed:
a5:30:37:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org